Linux Archive

Linux Archive (http://www.linux-archive.org/)
-   Cluster Development (http://www.linux-archive.org/cluster-development/)
-   -   libcman: fix possible string nontermination (http://www.linux-archive.org/cluster-development/711487-libcman-fix-possible-string-nontermination.html)

Christine Caulfield 10-11-2012 02:36 PM

libcman: fix possible string nontermination
 
in RHEL6 those strings are copied using strcpy - I think it was changed
in the STABLE branch to strncpy after a coverity scan


TBH the original strcpy is quite safe as the strings come from internal
sources and are pre-validated.


Anyway, the arrays are allocated as size+1 so the strings will never
overflow.


NACK.

On 11/10/12 15:21, Jan Pokorný wrote:

Hello once more,

I discovered cases potentially leading to string overruns later
in the processing.

Jan Pokorný (3):
libcman: fix possible string nontermination: node name
libcman: fix possible string nontermination: barrier name
libcman: fix possible string nontermination: barrier name

cman/lib/libcman.c | 12 ++++++------
1 file changed, 6 insertions(+), 6 deletions(-)


All times are GMT. The time now is 12:46 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.